Remote malware remediation
First Claim
1. At least one non-transitory machine accessible storage medium having instructions stored thereon, the instructions when executed on a machine, cause the machine to:
- identify, at an anti-malware support system, an opportunity to assist with remediation of a file at a particular host device remote from the anti-malware support system;
determine a remediation tool for remediation of the file;
launch the remediation tool on a computing device remote from the particular host device;
cause operations of the remediation tool to be applied to resources of the particular host device; and
receive feedback data at the anti-malware support system from the particular host device identifying whether the operations of the remediation tool remediated the file, wherein feedback data identifying that remediation of the file is incomplete following application of the operations causes the anti-malware support system to apply another remediation tool to resources of the particular host device.
9 Assignments
0 Petitions
Accused Products
Abstract
An opportunity to assist with remediation of a file at a remote particular host device is identified. One or more remediation techniques are identified that can be applied to assist with remediation of the file at the particular host device. In one aspect, one or more remediation scripts are identified from a plurality of remediation scripts for remediation of the file and provided to the particular host device for execution on the particular host device. In another aspect, a remediation tool is identified and launched on a computing device remote from the particular host device with operations of the remediation tool applied to resources of the particular host device. In another aspect, at least a portion of the remediation techniques are remotely initiated to be performed locally at the particular host device.
60 Citations
22 Claims
-
1. At least one non-transitory machine accessible storage medium having instructions stored thereon, the instructions when executed on a machine, cause the machine to:
-
identify, at an anti-malware support system, an opportunity to assist with remediation of a file at a particular host device remote from the anti-malware support system; determine a remediation tool for remediation of the file; launch the remediation tool on a computing device remote from the particular host device; cause operations of the remediation tool to be applied to resources of the particular host device; and receive feedback data at the anti-malware support system from the particular host device identifying whether the operations of the remediation tool remediated the file, wherein feedback data identifying that remediation of the file is incomplete following application of the operations causes the anti-malware support system to apply another remediation tool to resources of the particular host device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method comprising:
-
identifying, at an anti-malware support system, an opportunity to assist with remediation of a file at a particular host device remote from the anti-malware support system; determining a remediation tool for remediation of the file; launching the remediation tool on a computing device remote from the particular host device; causing operations of the remediation tool to be applied to resources of the particular host device; and receiving feedback data at the anti-malware support system from the particular host device identifying whether the operations of the remediation tool remediated the file, wherein feedback data identifying that remediation of the file is incomplete following application of the operations causes the anti-malware support system to apply another remediation tool to resources of the particular host device.
-
-
22. A system comprising:
-
at least one processor device; at least one memory element; and an antimalware support server adapted when executed by the at least one processor device to; identify an opportunity to assist with remediation of a file at a remote particular host device; determine a remediation tool for remediation of the file; launch the remediation tool on a computing device remote from the particular host device; cause operations of the remediation tool to be applied to resources of the particular host device; and receive feedback data at the anti-malware support system from the particular host device identifying whether the operations of the remediation tool remediated the file, wherein feedback data identifying that remediation of the file is incomplete following application of the operations causes the anti-malware support system to apply another remediation tool to resources of the particular host device.
-
Specification